pubmed-database

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.70). The skill explicitly retrieves and ingests external PubMed content via the NCBI E-utilities (e.g., ESearch/EFetch/ESummary) as described in SKILL.md and references/api_reference.md, so the agent will read and act on third-party public website data (PubMed records) that could influence subsequent tool use or decisions.